Aggregator

CVE-2023-38922 | Netgear JWNR2000v2/XWN5001/XAVN2001v2 update_auth http_passwd/http_username parameters buffer overflow (EUVD-2023-42682)

3 months ago

A vulnerability, which was classified as critical, was found in Netgear JWNR2000v2, XWN5001 and XAVN2001v2. This impacts the function update_auth. The manipulation of the argument http_passwd/http_username parameters results in buffer overflow. This vulnerability is reported as CVE-2023-38922. The attacker must have access to the local network to execute the attack. No exploit exists.

vuldb.com

CVE-2023-38921 | Netgear WG302v2 5.1.19/5.2.9 upgrade_handler firmwareRestore/firmwareServerip command injection (EUVD-2023-42681)

Vuldb Updates

3 months ago

A vulnerability has been found in Netgear WG302v2 5.1.19/5.2.9 and classified as critical. Affected is the function upgrade_handler. This manipulation of the argument firmwareRestore/firmwareServerip causes command injection. This vulnerability appears as CVE-2023-38921. The attacker needs to be present on the local network. There is no available exploit. The affected component should be upgraded.

vuldb.com

CVE-2023-38924 | Netgear DGN3500 1.1.00.37 setup.cgi http_password buffer overflow (EUVD-2023-42684)

Vuldb Updates

3 months ago

A vulnerability was found in Netgear DGN3500 1.1.00.37. It has been classified as critical. The impacted element is an unknown function of the file setup.cgi. This manipulation of the argument http_password causes buffer overflow. This vulnerability appears as CVE-2023-38924. The attacker needs to be present on the local network. There is no available exploit.

vuldb.com

CVE-2023-38925 | Netgear DC112A/EX6200/R6300v2 password.cgi http_passwd buffer overflow (EUVD-2023-42685)

Vuldb Updates

3 months ago

A vulnerability was found in Netgear DC112A, EX6200 and R6300v2. It has been declared as critical. This affects an unknown function of the file password.cgi. Such manipulation of the argument http_passwd leads to buffer overflow. This vulnerability is traded as CVE-2023-38925. Access to the local network is required for this attack to succeed. There is no exploit available.

vuldb.com

CVE-2023-38916 | eVotingSystem-PHP 1.0 Input Field sql injection (EUVD-2023-42676)

Vuldb Updates

3 months ago

A vulnerability classified as critical was found in eVotingSystem-PHP 1.0. This issue affects some unknown processing of the component Input Field Handler. Such manipulation leads to sql injection. This vulnerability is referenced as CVE-2023-38916. It is possible to launch the attack remotely. No exploit is available.

vuldb.com

知识星球的 10 年

吴鲁加

3 months ago

知识星球 10 岁了。

地球逾 20 年再次遭遇 S4 级太阳辐射风暴

Solidot

3 months ago

1 月 18 日暴发的 X1.9 级太阳耀斑朝地球方向释放了一个日冕物质抛射，1 月 19 日日冕物质抛射抵达地球，产生了 G4 级地磁风暴，欧洲各地的夜空，从德国、英国到法国都观察到了明亮的极光。1 月 20 日的地磁风暴等级略低，在 G1 到 G3 之间。地球目前正处于 S4 级太阳辐射风暴中，这是 2003 年以来首次突破 S4 级，也是自测量以来第三强的辐射风暴，预计会对卫星运营商和高频无线电产生影响。

AI Supercharges Attacks in Cybercrime's New 'Fifth Wave'

Information Security Magazine

3 months ago

Weaponized AI is fueling a new wave of cybercrime, said Group-IB in its latest report

Decoding malware C2 with CyberChef

NETRESEC Network Security Blog

3 months ago

This video tutorial demonstrates how malware XOR encrypted and obfuscated C2 traffic can be decoded with CyberChef. The analyzed PCAP files can be downloaded from malware-traffic-analysis.net. CyberChef recipe to decode the reverse shell traffic to 103.27.157.146:4444: From_Hex(Auto) XOR({option:Hex[...]

Erik Hjelmvik

Could ChatGPT Convince You to Buy Something?

Security Boulevard

3 months ago

Eighteen months ago, it was plausible that artificial intelligence might take a different path than social media. Back then, AI’s development hadn’t consolidated under a small number of big tech firms. Nor had it capitalized on consumer attention, surveilling users and delivering ads.

Unfortunately, the AI industry is now taking a page from the social media playbook and has set its sights on monetizing consumer attention. When OpenAI launched its ChatGPT Search feature in late 2024 and its browser, ChatGPT Atlas, in October 2025, it kicked off a ...

The post Could ChatGPT Convince You to Buy Something? appeared first on Security Boulevard.

Bruce Schneier

Lockbit

Dark Feed IO

3 months ago

You must login to view this content

cohenido

3,4 миллиарда долларов «в никуда»: почему 80% криптопроектов уже встретили свой конец

Securitylab.ru

3 months ago

Объем криптовалютных краж в 2025 году вырос до максимума со времен краха FTX.

The Hidden Risk of Orphan Accounts

The Hackers News

3 months ago

The Problem: The Identities Left Behind As organizations grow and evolve, employees, contractors, services, and systems come and go - but their accounts often remain. These abandoned or “orphan” accounts sit dormant across applications, platforms, assets, and cloud consoles. The reason they persist isn’t negligence - it’s fragmentation. Traditional IAM and IGA systems are designed

The Hacker News

银狐木马样本分析：基于TLS回调与动态加载的恶意行为解析

先知技术社区

3 months ago

本文对钓鱼邮件中的银狐木马样本进行动态与静态分析，揭示其通过TLS回调、内存解密、API动态加载等技术释放恶意载荷并建立持久化控制的过程。

WooCommerce Brevo Sendinblue 插件 CVE-2025-66128 授权缺失漏洞分析

先知技术社区

3 months ago

该漏洞由 Patchstack 于 2025 年 11 月 21 日保留，影响插件 4.0.49 及之前的所有版本，核心成因是访问控制安全级别配置不当，导致攻击者可绕过权限验证，未授权调用插件新闻订阅相关 REST API 接口，实现用户订阅状态篡改、非法订阅/退订等操作。

第三届“数信杯”数据安全大赛数据安全个人赛初赛WP

先知技术社区

3 months ago

记录第三届“数信杯”数据安全大赛数据安全个人赛初赛部分题的解题过程

Keras 3 深度学习框架路径遍历漏洞分析

先知技术社区

3 months ago

Keras 3.11.3 版本在提取 tar 归档文件时，其 `keras.utils.get_file()` 函数存在路径遍历漏洞

利用控制面板COM对象实现内网横向移动的新型DCOM攻击技术

先知技术社区

3 months ago

前言上一篇文章介绍了Impacket中dcomexec.py的工作原理，以及在Windows Server 2025中如何绕过Microsoft Defender Antivirus，本文会介绍一种新的和控制面板相关的COM对象，用于内网横向命令执行这个COM对象之前也被用于社工钓鱼和权限维持，本文会先介绍它在社工钓鱼中的应用，然后介绍它如何应用在内网横向命令执行，最后介绍如何检测以及阻止这类攻

表情符号攻击：LLM 安全防线的隐蔽威胁

先知技术社区

3 months ago

表情符号作为全球通用的视觉沟通语言，已深度融入数字交流场景。其 Unicode 标准化特性使其能被 LLM 解析为合法 token，但 LLM 对表情符号的语义理解存在天然缺陷 —— 既难以精准捕捉其文化语境差异，又容易被恶意构造的表情序列误导。这种特性让表情符号攻击具备极强的隐蔽性：攻击者通过将恶意指令与表情符号融合，可规避关键词过滤，诱导 LLM 生成暴力指导、恶意代码等违规内容。

2个由注册点导致垂直越权的漏洞案例

先知技术社区

3 months ago

注册点导致垂直越权

Aggregator

Managed ad